Cybersecurity SME Lead Secret or Top Secret

Job Description

Company: S2i2, Inc

Location: Fort Belvoir, US

Cybersecurity SME Lead

Location: Fort Belvoir VA, or Columbus OH, or Philadelphia PA

Clearance Required:

Active Secret (Tier 3 / T3) or Top-Secret accepted

Required

Certifications:
• CISSP, or CASP+, or CISA
• Active ACAS training certification
• Active Tanium training certification

One of the Below

Certifications:
• ICS-300 or equivalent OT/ICS cybersecurity certification (e.g., GICSP, ISA/IEC 62443)
• ISA/IEC 62443 Cybersecurity Certificate
• GRID (GIAC Response and Industrial Defense)
• GCIP (GIAC Critical Infrastructure Protection)
• CSSA (IACRB Certified SCADA Security Architect)

Salary Range: $140K-$190K Based on Experience

Final date to receive applications: May 1, 2026
Position Overview

The Cybersecurity SME-Lead serves as the senior technical authority for the DLA TFS Vulnerability Management program. This individual provides expert-level cybersecurity direction to the Cybersecurity Engineers, leads preparation for DoD inspections (CCRI, CORA, Blue Team), manages end-to-end POA&M lifecycle, and briefs senior DLA leadership. This is an ON-SITE position at a DLA primary MSC location (Fort Belvoir VA, Columbus OH, or Philadelphia PA area).
Minimum Requirements
• 10 years of IT experience
• 10 years of DoD Cybersecurity experience
• 10 years of Risk Management Framework (RMF) and NIST A&A experience
• Demonstrated expertise leading and mentoring cybersecurity teams with direct quality oversight
• Proven hands-on experience preparing enterprise environments for CCRI, CORA, and Blue Team assessments
• SME-level ability to assess security controls and conduct authorization reviews for large, complex organizations
• Expert knowledge of DoD cybersecurity requirements: STIGs, TCG configuration guides, IAVMs, Task Orders
• Oversees end-to-end POA&M lifecycle management including documentation, tracking, and remediation closure
• Ability to interpret new and evolving DoD cybersecurity documentation and produce high-quality artifacts even when guidance is ambiguous
• Skilled in producing authoritative system documents: SSP, CONOPS, Incident Response Plan, Contingency Plan, Configuration Management Plan
• Expert-level scripting and automation:
Power Shell, Python – reviews and validates engineers’ scripts
• Leads risk assessments and provides risk-based recommendations to leadership for prioritizing mitigation
• Creates dashboards, analytics, and trend reports using Power BI, Power Platform, and enterprise data sources
• Knowledgeable in emerging technology areas:
Cloud, IOT, OT infrastructures
Key Responsibilities
• Provide technical leadership and day-to-day direction to Cybersecurity Engineers
• Develop and execute the organization’s vulnerability management strategy, ensuring alignment with DoD requirements
• Oversee team scanning, reporting, and remediation workflows to maintain continuous compliance and inspection readiness
• Lead preparation and response for CCRI, CORA, Blue Team, and other DoD cybersecurity inspections
• Manage end-to-end POA&M lifecycle: documentation, status tracking, remediation closure
• Serve as primary cybersecurity liaison to DLA leadership, mission owners, and external assessment teams
• Establish governance processes for patch management, configuration compliance, and change control
• Provide senior-level expertise on network security architecture, segmentation, and zero-trust principles
• Produce executive-level briefings and actionable recommendations from complex technical findings
• Ensure consistent, high-quality reporting on vulnerabilities, compliance status, and risk posture
About S2i2

S2i2 is a growing company with a supportive and inclusive culture and many opportunities for professional development and growth. We have created a supportive, family-like work environment where contributions are recognized. Regular company updates and open lines of communication with leadership fosters collaboration within the company.
We are proud to include:
• Support to achieve professional certifications and degrees
• Leadership that is accessible to all employees
• Regular company updates
• Client networking social engagements
• Monthly team-building activities (past examples: Top Golf)
• Supporting our community – including veterans

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.
#J-18808-Ljbffr

Source: Learn4Good